Gitiles
Code Review Sign In
git01.mediatek.com / openwrt / feeds / mtk-openwrt-feeds / 1a9f43f7ef1123e0def15800e7c96c945e3702bf^! / .
commit1a9f43f7ef1123e0def15800e7c96c945e3702bf[log] [tgz]
authordeveloper <developer@mediatek.com>Tue Mar 26 14:03:42 2024 +0800
committerdeveloper <developer@mediatek.com>Tue Mar 26 17:12:00 2024 +0800
treea21d65c621cf6c33f6951879d047747ef3804358
parent8da110744fd11423dea9c45f100ea3c82bbc152e [diff]
[][openwrt][common][app][Fix switch issues detected by Coverity]

[Description]
Fix issues detected by Coverity scan,
CID 5237903,5237902,5237900,5237898

[Release-log]
N/A


Change-Id: I904d253baf3f8235f94873d8514c02cc3b6f655f
Reviewed-on: https://gerrit.mediatek.inc/c/openwrt/feeds/mtk_openwrt_feeds/+/8855775

diff --git a/feed/app/switch/src/switch_fun.c b/feed/app/switch/src/switch_fun.c
index 9e9f4fe..e439ee8 100644
--- a/feed/app/switch/src/switch_fun.c
+++ b/feed/app/switch/src/switch_fun.c

@@ -11,6 +11,7 @@
 #include <linux/if.h>
 #include <stdbool.h>
 #include <time.h>
+#include <errno.h>
 
 #include "switch_extend.h"
 #include "switch_netlink.h"
@@ -3236,10 +3237,37 @@
 void ingress_rate_set(int argc, char *argv[])
 {
 	int on_off = 0, port = 0, bw = 0;
+	char *endptr;
 
-	port = strtoul(argv[3], NULL, 0);
+	/* clear errno before conversion to detect overflow */
+	errno = 0;
+	port = strtoul(argv[3], &endptr, 0);
+
+	if (errno == ERANGE) {
+		printf("Conversion error, value out of range\n");
+		return;
+	}
+	if (*endptr != '\0') {
+		printf("Conversion error, no digits were found\n");
+		return;
+	}
+
+	if (port < 0 || port > 6) {
+		printf("Wrong port range, should be within 0-6\n");
+		return;
+	}
+
 	if (argv[2][1] == 'n') {
-		bw = strtoul(argv[4], NULL, 0);
+		errno = 0;
+		bw = strtoul(argv[4], &endptr, 0);
+		if (errno == ERANGE) {
+			printf("Conversion error, value out of range\n");
+			return;
+		}
+		if (*endptr != '\0') {
+			printf("Conversion error, no digits were found\n");
+			return;
+		}
 		on_off = 1;
 	} else if (argv[2][1] == 'f') {
 		if (argc != 4)
@@ -3309,10 +3337,34 @@
 {
 	unsigned int value = 0, reg = 0;
 	int on_off = 0, port = 0, bw = 0;
+	char *endptr;
 
-	port = strtoul(argv[3], NULL, 0);
+	/* clear errno before conversion to detect overflow */
+	errno = 0;
+	port = strtoul(argv[3], &endptr, 0);
+	if (errno == ERANGE) {
+		printf("Conversion error, value out of range\n");
+		return;
+	}
+	if (*endptr != '\0') {
+		printf("Conversion error, no digits were found\n");
+		return;
+	}
+	if (port < 0 || port > 6) {
+		printf("Wrong port range, should be within 0-6\n");
+		return;
+	}
 	if (argv[2][1] == 'n') {
-		bw = strtoul(argv[4], NULL, 0);
+		errno = 0;
+		bw = strtoul(argv[4], &endptr, 0);
+		if (errno == ERANGE) {
+			printf("Conversion error, value out of range\n");
+			return;
+		}
+		if (*endptr != '\0') {
+			printf("Conversion error, no digits were found\n");
+			return;
+		}
 		on_off = 1;
 	} else if (argv[2][1] == 'f') {
 		if (argc != 4)